
Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS402487.roa
File: AS402487.roa (raw, json)
Hash identifier: o1nMCxoj5ZKhXIWN/qnkP5kwCZcUb6azv4HpgslbnQQ=
Subject key identifier: 13:9B:D9:16:A6:22:51:57:01:3C:17:44:3D:C5:9A:B7:DE:E4:34:18
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 78A67EE0B3EE4437309354396819422B2B5C653F
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS402487.roa
Signing time: Fri 10 Jul 2026 02:03:48 +0000
ROA not before: Fri 10 Jul 2026 01:58:48 +0000
ROA not after: Fri 09 Jul 2027 02:03:48 +0000
asID: 402487
IP address blocks: 82.21.200.0/24 maxlen: 24
82.23.142.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 11 Jul 2026 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:a6:7e:e0:b3:ee:44:37:30:93:54:39:68:19:42:2b:2b:5c:65:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jul 10 01:58:48 2026 GMT
Not After : Jul 9 02:03:48 2027 GMT
Subject: CN=139BD916A6225157013C17443DC59AB7DEE43418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:df:bf:e9:d9:9e:21:84:b3:c1:b0:12:b6:92:
16:a1:14:d7:d6:e8:01:46:0d:ab:1e:e8:f2:aa:3c:
94:df:1f:8f:54:3c:53:7e:61:fb:7b:e0:20:50:e6:
fc:62:70:ba:5e:15:01:da:52:c0:b6:a5:3b:f3:c6:
79:1c:34:b1:4b:8d:7c:f4:2b:00:7e:76:40:5d:e6:
9f:a2:b4:ff:aa:f6:fc:08:4b:43:1d:a6:09:46:ff:
ca:b8:92:22:69:d7:b2:21:eb:12:29:3b:13:eb:19:
f2:fc:c8:2e:ce:f1:93:71:fb:89:4a:be:64:00:52:
0b:ff:fb:79:e0:e2:49:d8:73:fd:8a:06:d1:18:65:
98:1e:f4:7a:06:ad:1f:c1:a4:c1:7c:14:0f:4f:50:
00:76:2a:49:90:7e:b6:cb:04:74:19:c8:b0:37:23:
3b:11:69:32:5b:d0:34:a3:92:23:3f:c9:c3:69:51:
38:71:c5:2c:4b:ba:41:ab:4e:f1:f3:c4:80:32:ce:
5c:b9:bf:70:be:9f:69:15:f8:63:21:d4:2b:91:ac:
af:31:fb:50:57:2d:91:a7:c7:13:2f:c2:97:f6:d2:
97:d4:e3:eb:6c:62:41:61:b9:65:de:54:9c:fd:f2:
1f:50:73:9e:33:00:0c:a0:bf:0d:76:3c:af:29:eb:
07:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:9B:D9:16:A6:22:51:57:01:3C:17:44:3D:C5:9A:B7:DE:E4:34:18
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS402487.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.200.0/24
82.23.142.0/24
Signature Algorithm: sha256WithRSAEncryption
39:37:50:f1:27:da:c2:67:46:87:c7:0c:bb:05:e1:3e:e5:a7:
28:ce:c5:c5:60:9d:97:c3:5e:55:c1:16:fc:d0:a2:bc:ba:a0:
5c:53:9c:82:56:84:86:53:45:a4:5a:af:ed:91:45:e2:0b:33:
bb:b1:f1:d7:76:ac:77:83:9a:f8:5a:21:6a:ab:e7:a8:e1:8d:
c4:1f:d9:23:39:97:e7:90:75:9a:4e:26:79:b9:97:ad:68:eb:
2a:fb:2c:98:18:2f:de:6b:1c:08:c0:cd:c0:dd:71:b6:1d:99:
8d:55:0b:39:d2:81:c0:5d:a7:6f:65:e8:75:bf:6e:38:32:73:
2a:29:93:8c:e6:3d:04:e8:28:ec:d1:23:df:c0:e7:a6:cd:e6:
66:91:f7:a5:0a:18:86:97:d1:0d:88:0b:45:94:4a:1c:1d:97:
d5:2b:6c:05:50:a7:99:dc:ee:3a:40:8c:95:6d:d0:bd:4a:a4:
ac:96:1f:30:c2:c1:40:7f:2c:34:5c:15:76:a3:93:e3:1d:e0:
6c:81:4b:b1:7a:77:3e:c2:f4:24:97:60:71:2d:ed:b6:64:f7:
3c:a0:a8:5a:10:0d:17:c6:22:f0:e4:09:c4:79:c4:d0:c4:e6:
17:c9:ab:09:f2:a9:18:91:72:0e:df:8c:85:08:fb:59:af:05:
e6:d4:c0:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 10 15:30:30 2026 by rpki-client